Find the answer to your Linux question:
Results 1 to 8 of 8
Hello folks, I am new to Linux and have decided to take on an ambitious project to set up a file server, and domain controller with active directory using linux. ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Mar 2009
    Posts
    5

    Exclamation File Server, Domain Controller, LDAP


    Hello folks,

    I am new to Linux and have decided to take on an ambitious project to set up a file server, and domain controller with active directory using linux. I have some experience with SBS2003 but am now wanting to revert to linux.
    I have been going through plenty of guides and walkthroughs, but I am still unclear as to what exactly I need to do in order to setup a small network for 4 windows computers:
    1. Setup a domain controller
    2. Setup a file server
    3. Join the windows workstations to the domain

    Any help will be greatly appreciated!

    Thank you,

    Behrad

  2. #2
    Just Joined!
    Join Date
    Mar 2009
    Posts
    5
    I forgot to mention, I have downloaded and installed fedora 10.

  3. #3
    Linux Enthusiast meton_magis's Avatar
    Join Date
    Oct 2006
    Location
    arizona
    Posts
    699
    This is all your choice, but I wouldn't do an active directory and domain controller thing, it is kinda overkill. Even microsoft doesn't recomend it for so few computers (maybe i'm thinking of DHCP, but dont remember)

    You should just stick with a file server, and use samba for that.

    Chapter*20.*Samba

    that should tell you what you need.
    New to the internet, technical forums, or the hacker / open source community??
    Read this to learn good posting habits http://www.catb.org/~esr/faqs/smart-questions.html

    RHCE for RHEL version 5
    RHCT for RHEL version 4

  4. $spacer_open
    $spacer_close
  5. #4
    Just Joined!
    Join Date
    Mar 2009
    Posts
    13
    Upto my knowledge you can use samba along with active directories, and if we know your exact requirements i can provide support for those .
    remember you were evaluating new software for your company. Here’s a site click2try. A community site where it's easy to try Open Source software for free. that has several <wikis, CMSs, ERP apps, CRM apps, etc.> in one place and you can try them in your browser for free. Hope this helps with your evaluation

  6. #5
    Just Joined!
    Join Date
    Mar 2009
    Posts
    5
    meton_magis, I have setup Samba, and have made it a trusted service. I can ping the linux server from my XP machine, but can't get to the shared directories. When I try to browse the server by putting in the IP addresses in explorer, it fails to connect to the server. Any thoughts?

  7. #6
    Just Joined!
    Join Date
    Mar 2009
    Posts
    2
    Have you opened the needed ports in your firewall? You need 139 & 445 open if I remember correctly. If you need a quick and dirty explanation to opening ports in IPtables, check out:
    Redhat / CentOS / Fedora Linux Open Port

    You should also check that the samba service is running properly. Try opening the terminal and enter the following:

    /etc/init.d/smb restart

    As far as replacing active directory with a Linux equivalent , you should read the posts on this page:
    Slashdot | Best FOSS Active Directory Alternative?

    Last but not least, I found several guides that may help you out at howtoforge.com.

    Hope that helps.

  8. #7
    Just Joined!
    Join Date
    Mar 2009
    Posts
    5

    Troubles continue

    Thanks folks... So the opening of ports did the trick.
    My main issue is that I want to set up public folders that everyone can access. Currently, users can only access their own home folders . I have tried adding shared locations in multiple areas but none of the users can access them even when I grant user permission through Samba. I read that Linux write permissions will supersede Samba's. So, how can I set up a shared folder where everyone can access. Here's my config files. There are only two users Ali & Behrad and they can only access folders in their own home folders.

    ======================= Global Settings =====================================

    [global]

    # ----------------------- Netwrok Related Options -------------------------
    #
    # workgroup = NT-Domain-Name or Workgroup-Name, eg: MIDEARTH
    #
    # server string is the equivalent of the NT Description field
    #
    # netbios name can be used to specify a server name not tied to the hostname
    #
    # Interfaces lets you configure Samba to use multiple interfaces
    # If you have multiple network interfaces then you can list the ones
    # you want to listen on (never omit localhost)
    #
    # Hosts Allow/Hosts Deny lets you restrict who can connect, and you can
    # specifiy it as a per share option as well
    #
    workgroup = workgroup
    server string = Samba Server Version %v

    ; netbios name = MYSERVER

    ; interfaces = lo eth0 192.168.12.2/24 192.168.13.2/24
    ; hosts allow = 127. 192.168.12. 192.168.13.

    # --------------------------- Logging Options -----------------------------
    #
    # Log File let you specify where to put logs and how to split them up.
    #
    # Max Log Size let you specify the max size log files should reach

    # logs split per machine
    log file = /var/log/samba/log.%m
    # max 50KB per log file, then rotate
    max log size = 50

    # ----------------------- Standalone Server Options ------------------------
    #
    # Scurity can be set to user, share(deprecated) or server(deprecated)
    #
    # Backend to store user information in. New installations should
    # use either tdbsam or ldapsam. smbpasswd is available for backwards
    # compatibility. tdbsam requires no further configuration.

    security = user
    passdb backend = tdbsam


    # ----------------------- Domain Members Options ------------------------
    #
    # Security must be set to domain or ads
    #
    # Use the realm option only with security = ads
    # Specifies the Active Directory realm the host is part of
    #
    # Backend to store user information in. New installations should
    # use either tdbsam or ldapsam. smbpasswd is available for backwards
    # compatibility. tdbsam requires no further configuration.
    #
    # Use password server option only with security = server or if you can't
    # use the DNS to locate Domain Controllers
    # The argument list may include:
    # password server = My_PDC_Name [My_BDC_Name] [My_Next_BDC_Name]
    # or to auto-locate the domain controller/s
    # password server = *


    ; realm = MY_REALM

    ; password server = <NT-Server-Name>

    # ----------------------- Domain Controller Options ------------------------
    #
    # Security must be set to user for domain controllers
    #
    # Backend to store user information in. New installations should
    # use either tdbsam or ldapsam. smbpasswd is available for backwards
    # compatibility. tdbsam requires no further configuration.
    #
    # Domain Master specifies Samba to be the Domain Master Browser. This
    # allows Samba to collate browse lists between subnets. Don't use this
    # if you already have a Windows NT domain controller doing this job
    #
    # Domain Logons let Samba be a domain logon server for Windows workstations.
    #
    # Logon Scrpit let yuou specify a script to be run at login time on the client
    # You need to provide it in a share called NETLOGON
    #
    # Logon Path let you specify where user profiles are stored (UNC path)
    #
    # Various scripts can be used on a domain controller or stand-alone
    # machine to add or delete corresponding unix accounts
    #

    ; domain master = yes
    ; domain logons = yes

    # the login script name depends on the machine name
    ; logon script = %m.bat
    # the login script name depends on the unix user used
    ; logon script = %u.bat
    ; logon path = \\%L\Profiles\%u
    # disables profiles support by specifing an empty path
    ; logon path =

    ; add user script = /usr/sbin/useradd "%u" -n -g users
    ; add group script = /usr/sbin/groupadd "%g"
    ; add machine script = /usr/sbin/useradd -n -c "Workstation (%u)" -M -d /nohome -s /bin/false "%u"
    ; delete user script = /usr/sbin/userdel "%u"
    ; delete user from group script = /usr/sbin/userdel "%u" "%g"
    ; delete group script = /usr/sbin/groupdel "%g"


    # ----------------------- Browser Control Options ----------------------------
    #
    # set local master to no if you don't want Samba to become a master
    # browser on your network. Otherwise the normal election rules apply
    #
    # OS Level determines the precedence of this server in master browser
    # elections. The default value should be reasonable
    #
    # Preferred Master causes Samba to force a local browser election on startup
    # and gives it a slightly higher chance of winning the election
    ; local master = no
    ; os level = 33
    ; preferred master = yes

    #----------------------------- Name Resolution -------------------------------
    # Windows Internet Name Serving Support Section:
    # Note: Samba can be either a WINS Server, or a WINS Client, but NOT both
    #
    # - WINS Support: Tells the NMBD component of Samba to enable it's WINS Server
    #
    # - WINS Server: Tells the NMBD components of Samba to be a WINS Client
    #
    # - WINS Proxy: Tells Samba to answer name resolution queries on
    # behalf of a non WINS capable client, for this to work there must be
    # at least one WINS Server on the network. The default is NO.
    #
    # DNS Proxy - tells Samba whether or not to try to resolve NetBIOS names
    # via DNS nslookups.

    ; wins support = yes
    ; wins server = w.x.y.z
    ; wins proxy = yes

    ; dns proxy = yes

    # --------------------------- Printing Options -----------------------------
    #
    # Load Printers let you load automatically the list of printers rather
    # than setting them up individually
    #
    # Cups Options let you pass the cups libs custom options, setting it to raw
    # for example will let you use drivers on your Windows clients
    #
    # Printcap Name let you specify an alternative printcap file
    #
    # You can choose a non default printing system using the Printing option

    ; load printers = yes
    cups options = raw

    ; printcap name = /etc/printcap
    #obtain list of printers automatically on SystemV
    ; printcap name = lpstat
    ; printing = cups

    # --------------------------- Filesystem Options ---------------------------
    #
    # The following options can be uncommented if the filesystem supports
    # Extended Attributes and they are enabled (usually by the mount option
    # user_xattr). Thess options will let the admin store the DOS attributes
    # in an EA and make samba not mess with the permission bits.
    #
    # Note: these options can also be set just per share, setting them in global
    # makes them the default for all shares

    ; map archive = no
    ; map hidden = no
    ; map read only = no
    ; map system = no
    ; encrypt passwords = yes
    ; guest ok = no
    ; guest account = nobody
    username map = /etc/samba/smbusers
    ; store dos attributes = yes


    #============================ Share Definitions ==============================

    [homes]
    comment = Home Directories
    browseable = no
    writable = yes
    ; valid users = %S
    ; valid users = MYDOMAIN\%S

    [printers]
    comment = All Printers
    path = /var/spool/samba
    browseable = no
    ; guest ok = no
    ; writable = No
    printable = yes

    # Un-comment the following and create the netlogon directory for Domain Logons
    ; [netlogon]
    ; comment = Network Logon Service
    ; path = /var/lib/samba/netlogon
    ; guest ok = yes
    ; writable = no
    ; share modes = no


    # Un-comment the following to provide a specific roving profile share
    # the default is to use the user's home directory
    ; [Profiles]
    ; path = /var/lib/samba/profiles
    ; browseable = no
    ; guest ok = yes


    # A publicly accessible directory, but read only, except for people in
    # the "staff" group
    [Samba]
    comment = Public Stuff
    path = /home/Samba
    guest ok = yes
    writeable = yes
    ; printable = no
    write list = +staff
    ; browseable = yes


    [evo1]
    path = /home/Behrad/Documents/evo1
    writeable = yes
    ; browseable = yes
    valid users = Ali, Behrad



    [Public]
    path = /root/Public
    writeable = yes
    ; browseable = yes
    guest ok = yes

    [Test]
    path = /var/lib/samba/Test
    writeable = yes
    ; browseable = yes
    guest ok = yes

  9. #8
    Linux Enthusiast meton_magis's Avatar
    Join Date
    Oct 2006
    Location
    arizona
    Posts
    699
    I wish I could help you further, but getting linux to act like windows is one of the hardest things i've ever had to do. I setup a fileserver for my house to export movies to my windows PC's, but it was a long time ago, and not very fun if memory serves. Best of luck to you though.
    New to the internet, technical forums, or the hacker / open source community??
    Read this to learn good posting habits http://www.catb.org/~esr/faqs/smart-questions.html

    RHCE for RHEL version 5
    RHCT for RHEL version 4

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •